Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The gnu.java.security.util.PRNG class in GNU Classpath 0.97.2 and earlier uses a predictable seed based on the system time, which makes it easier for context-dependent attackers to conduct brute force attacks against cryptographic routines that use this class for randomness, as demonstrated against DSA private keys.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GNU Classpath gnu.java.security.util.PRNG类不充分熵漏洞
Vulnerability Description
GNU Classpath是虚拟机和编译器所使用的Java的核心类库。 GNU Classpath中的gnu.java.security.util.PRNG类默认使用毫秒时间作为内部种子,这样的种子随机性不够强,攻击者可以通过暴力猜测相对容易的破解加密例程,从而读取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A